CVEDB API

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2024-39917

xrdp is an open source RDP server. xrdp versions prior to 0.10.0 have a vulnerability that allows attackers to make an infinite number of login attempts. The number of max login attempts is supposed to be limited by a configuration parameter `MaxLoginRetry` in `/etc/xrdp/sesman.ini`. However, this mechanism was not effectively working. As a result, xrdp allows an infinite number of login attempts.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.004

EPSS Ranking 57.2%

CVSS Severity

CVSS v3 Score 7.2

References

Products affected by CVE-2024-39917

Neutrinolabs » Xrdp » Version: N/A

cpe:2.3:a:neutrinolabs:xrdp:-
Neutrinolabs » Xrdp » Version: 0.6.0

cpe:2.3:a:neutrinolabs:xrdp:0.6.0
Neutrinolabs » Xrdp » Version: 0.6.1

cpe:2.3:a:neutrinolabs:xrdp:0.6.1
Neutrinolabs » Xrdp » Version: 0.6.2

cpe:2.3:a:neutrinolabs:xrdp:0.6.2
Neutrinolabs » Xrdp » Version: 0.8.0

cpe:2.3:a:neutrinolabs:xrdp:0.8.0
Neutrinolabs » Xrdp » Version: 0.9.1

cpe:2.3:a:neutrinolabs:xrdp:0.9.1
Neutrinolabs » Xrdp » Version: 0.9.10

cpe:2.3:a:neutrinolabs:xrdp:0.9.10
Neutrinolabs » Xrdp » Version: 0.9.11

cpe:2.3:a:neutrinolabs:xrdp:0.9.11
Neutrinolabs » Xrdp » Version: 0.9.12

cpe:2.3:a:neutrinolabs:xrdp:0.9.12
Neutrinolabs » Xrdp » Version: 0.9.13

cpe:2.3:a:neutrinolabs:xrdp:0.9.13
Neutrinolabs » Xrdp » Version: 0.9.13.1

cpe:2.3:a:neutrinolabs:xrdp:0.9.13.1
Neutrinolabs » Xrdp » Version: 0.9.14

cpe:2.3:a:neutrinolabs:xrdp:0.9.14
Neutrinolabs » Xrdp » Version: 0.9.15

cpe:2.3:a:neutrinolabs:xrdp:0.9.15
Neutrinolabs » Xrdp » Version: 0.9.16

cpe:2.3:a:neutrinolabs:xrdp:0.9.16
Neutrinolabs » Xrdp » Version: 0.9.17

cpe:2.3:a:neutrinolabs:xrdp:0.9.17
Neutrinolabs » Xrdp » Version: 0.9.18

cpe:2.3:a:neutrinolabs:xrdp:0.9.18
Neutrinolabs » Xrdp » Version: 0.9.18.1

cpe:2.3:a:neutrinolabs:xrdp:0.9.18.1
Neutrinolabs » Xrdp » Version: 0.9.19

cpe:2.3:a:neutrinolabs:xrdp:0.9.19
Neutrinolabs » Xrdp » Version: 0.9.2

cpe:2.3:a:neutrinolabs:xrdp:0.9.2
Neutrinolabs » Xrdp » Version: 0.9.20

cpe:2.3:a:neutrinolabs:xrdp:0.9.20
Neutrinolabs » Xrdp » Version: 0.9.21

cpe:2.3:a:neutrinolabs:xrdp:0.9.21
Neutrinolabs » Xrdp » Version: 0.9.21.1

cpe:2.3:a:neutrinolabs:xrdp:0.9.21.1
Neutrinolabs » Xrdp » Version: 0.9.22

cpe:2.3:a:neutrinolabs:xrdp:0.9.22
Neutrinolabs » Xrdp » Version: 0.9.22.1

cpe:2.3:a:neutrinolabs:xrdp:0.9.22.1
Neutrinolabs » Xrdp » Version: 0.9.23

cpe:2.3:a:neutrinolabs:xrdp:0.9.23
Neutrinolabs » Xrdp » Version: 0.9.23.1

cpe:2.3:a:neutrinolabs:xrdp:0.9.23.1
Neutrinolabs » Xrdp » Version: 0.9.24

cpe:2.3:a:neutrinolabs:xrdp:0.9.24
Neutrinolabs » Xrdp » Version: 0.9.25

cpe:2.3:a:neutrinolabs:xrdp:0.9.25
Neutrinolabs » Xrdp » Version: 0.9.25.1

cpe:2.3:a:neutrinolabs:xrdp:0.9.25.1
Neutrinolabs » Xrdp » Version: 0.9.26

cpe:2.3:a:neutrinolabs:xrdp:0.9.26
Neutrinolabs » Xrdp » Version: 0.9.3

cpe:2.3:a:neutrinolabs:xrdp:0.9.3
Neutrinolabs » Xrdp » Version: 0.9.3.1

cpe:2.3:a:neutrinolabs:xrdp:0.9.3.1
Neutrinolabs » Xrdp » Version: 0.9.4

cpe:2.3:a:neutrinolabs:xrdp:0.9.4
Neutrinolabs » Xrdp » Version: 0.9.4.

cpe:2.3:a:neutrinolabs:xrdp:0.9.4.
Neutrinolabs » Xrdp » Version: 0.9.5

cpe:2.3:a:neutrinolabs:xrdp:0.9.5
Neutrinolabs » Xrdp » Version: 0.9.6

cpe:2.3:a:neutrinolabs:xrdp:0.9.6
Neutrinolabs » Xrdp » Version: 0.9.7

cpe:2.3:a:neutrinolabs:xrdp:0.9.7
Neutrinolabs » Xrdp » Version: 0.9.8

cpe:2.3:a:neutrinolabs:xrdp:0.9.8
Neutrinolabs » Xrdp » Version: 0.9.9

cpe:2.3:a:neutrinolabs:xrdp:0.9.9

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2024-39917

Products

Pricing

Contact Us